Endpoint Security Unpacking Dyre Part I May 29, 2016 by arpit | 97 Comments on Unpacking Dyre Part I Edited by Alon Slotky Dyre had become one of the most dangerous financial Trojans, targeting login credentials for banks accounts and other online services via Man-in-the-Browser exploits. In this post we will look into the mechanism of Dyre unpacking its own code. Dyre executes an obfuscated shellcode from its own .text section. In the flow […] Read more »